CVE-2026-1593

itsourcecode Society Management System edit_expenses_query.php sql injection

CVSS 6.9 MEDIUMEPSS 0.5%CWE-74 CWE-89

A weakness has been identified in itsourcecode Society Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/edit_expenses_query.php. Executing a manipulation of the argument detail can lead to sql injection. The attack may be launched remotely. The exploit has been made available to the public and could be used for attacks.

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Produtos afetados

itsourcecode · Society Management System

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://github.com/yyzq-wsx/for_cve/issues/3 https://itsourcecode.com/https://vuldb.com/?ctiid.343355 https://vuldb.com/?id.343355 https://vuldb.com/?submit.740689